Vulnerability: Improper Access Control in iBall Baton iB-WRB302N20122017 Devices

Vulnerability: Improper Access Control in iBall Baton iB-WRB302N20122017 Devices

CVE-2018-20008 · MEDIUM Severity

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

iBall Baton iB-WRB302N20122017 devices have improper access control over the UART interface, allowing physical attackers to discover Wi-Fi credentials (plain text) and the web-console password (base64) via the debugging console.

Learn more about our Web App Pen Testing.